Route Origin Authorization
$ rpki-client -vvf rpki1.terratransit.de/repo/TerraTransit/4/3138352e3233302e3133392e302f32342d3234203d3e20313336373837.roa
File: 3138352e3233302e3133392e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: Pif4fC+xzJL/HU6Vor/RVAW2pGE/toSNtfo9v61kO9g=
Subject key identifier: 1A:5B:5F:DF:E9:FE:0C:E4:75:9A:39:42:56:C2:48:BF:09:CF:AA:DC
Certificate issuer: /CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Certificate serial: FB6A53B748270394E38B241572AD2B23C5CA81
Authority key identifier: A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject info access: rsync://rpki1.terratransit.de/repo/TerraTransit/4/3138352e3233302e3133392e302f32342d3234203d3e20313336373837.roa
Signing time: Wed 22 Feb 2023 08:45:09 +0000
ROA not before: Wed 22 Feb 2023 08:40:09 +0000
ROA not after: Wed 21 Feb 2024 08:45:09 +0000
asID: 136787
IP address blocks: 185.230.139.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
fb:6a:53:b7:48:27:03:94:e3:8b:24:15:72:ad:2b:23:c5:ca:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6b65d4709f6cfd999a287789392baa6d3a5dcea
Validity
Not Before: Feb 22 08:40:09 2023 GMT
Not After : Feb 21 08:45:09 2024 GMT
Subject: CN=1A5B5FDFE9FE0CE4759A394256C248BF09CFAADC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:fd:01:ce:9f:0b:5c:06:0e:89:94:09:17:b6:
ad:d8:69:f7:be:18:9c:79:b7:1e:a0:74:e2:55:68:
37:88:8d:1a:12:51:2f:19:da:68:61:e4:2b:2b:76:
44:f5:c9:1a:51:09:38:5b:ae:7c:de:ac:84:b5:69:
9d:03:58:ce:93:a2:38:08:0b:05:52:dd:4a:b7:0f:
35:db:86:07:a5:79:a8:fb:06:80:f9:ed:6e:e7:b5:
c0:fa:e2:1b:b7:c6:9d:1c:c7:1b:5a:11:c0:e5:a7:
5f:6d:be:b6:be:95:ef:4c:c1:ec:bf:c3:f9:be:cf:
58:5d:90:a0:c5:2a:27:64:77:8f:fb:7b:a2:11:0a:
cc:ab:c0:9f:68:47:de:b3:5d:ce:b0:dc:7f:29:17:
c7:a2:5d:44:3b:da:fb:ae:00:14:01:b0:4d:38:3f:
29:b0:01:58:96:43:f0:48:90:ef:0c:d7:15:95:f0:
56:3f:b2:e7:ab:a7:ff:23:6e:85:f0:25:c9:72:73:
9b:42:4e:5d:4f:5a:82:e8:c9:d3:36:e2:1d:36:2a:
2b:42:de:78:cc:89:66:62:1c:dd:59:bf:21:41:e2:
19:04:15:3a:3a:ba:16:9a:c7:b8:0c:26:ed:fa:f4:
53:f8:ca:37:dc:e6:93:d6:ea:d1:f3:61:6e:17:e7:
39:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:5B:5F:DF:E9:FE:0C:E4:75:9A:39:42:56:C2:48:BF:09:CF:AA:DC
X509v3 Authority Key Identifier:
keyid:A6:B6:5D:47:09:F6:CF:D9:99:A2:87:78:93:92:BA:A6:D3:A5:DC:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/A6B65D4709F6CFD999A287789392BAA6D3A5DCEA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/prZdRwn2z9mZood4k5K6ptOl3Oo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki1.terratransit.de/repo/TerraTransit/4/3138352e3233302e3133392e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.230.139.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:30:96:34:c2:91:86:ea:dc:2f:6d:f9:7f:c8:b3:d9:5a:8d:
a8:d8:66:55:db:ce:a5:cd:bb:65:89:5e:4a:01:db:87:e4:e4:
b4:51:f1:01:48:60:25:79:39:9c:c7:6f:0d:31:84:2e:3e:c1:
ea:28:cc:e3:4d:f9:5a:da:d7:09:29:26:2a:b0:a0:89:69:7a:
4d:1a:e8:6a:19:fa:94:36:91:e0:b4:4d:06:64:0f:e1:ab:85:
82:f6:5c:51:0b:ea:03:e7:af:a6:a8:1f:9f:f3:a4:f0:37:01:
4e:2a:e6:b3:b9:89:97:ef:8a:74:07:29:11:4d:45:74:e3:20:
f8:2c:3f:a2:8e:50:e0:80:f5:10:96:86:5c:da:7e:16:67:39:
71:59:12:d3:75:0c:22:17:27:b2:e2:20:35:43:93:18:f7:7d:
46:15:de:b2:51:d7:88:42:f9:dd:8d:33:e2:30:a2:dd:51:b4:
a7:8f:13:7a:8d:30:ca:0f:5a:e0:3d:4f:8e:35:ca:5f:a8:d0:
78:a4:cc:d8:13:31:2c:c2:32:3b:47:11:fb:71:aa:a2:60:a7:
04:2d:36:c7:f4:11:b4:22:ac:ba:a2:d6:3f:2b:f5:af:02:cf:
6a:7b:79:b3:a7:64:08:98:87:4c:78:33:af:14:fc:88:7c:5e:
f1:d2:52:94
-----BEGIN CERTIFICATE-----
MIIE7DCCA9SgAwIBAgIUAPtqU7dIJwOU44skFXKtKyPFyoEwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYTZiNjVkNDcwOWY2Y2ZkOTk5YTI4Nzc4OTM5MmJhYTZk
M2E1ZGNlYTAeFw0yMzAyMjIwODQwMDlaFw0yNDAyMjEwODQ1MDlaMDMxMTAvBgNV
BAMTKDFBNUI1RkRGRTlGRTBDRTQ3NTlBMzk0MjU2QzI0OEJGMDlDRkFBREMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCy/QHOnwtcBg6JlAkXtq3Yafe+
GJx5tx6gdOJVaDeIjRoSUS8Z2mhh5CsrdkT1yRpRCThbrnzerIS1aZ0DWM6TojgI
CwVS3Uq3DzXbhgeleaj7BoD57W7ntcD64hu3xp0cxxtaEcDlp19tvra+le9Mwey/
w/m+z1hdkKDFKidkd4/7e6IRCsyrwJ9oR96zXc6w3H8pF8eiXUQ72vuuABQBsE04
PymwAViWQ/BIkO8M1xWV8FY/suerp/8jboXwJclyc5tCTl1PWoLoydM24h02KitC
3njMiWZiHN1ZvyFB4hkEFTo6uhaax7gMJu369FP4yjfc5pPW6tHzYW4X5zmrAgMB
AAGjggH2MIIB8jAdBgNVHQ4EFgQUGltf3+n+DOR1mjlCVsJIvwnPqtwwHwYDVR0j
BBgwFoAUprZdRwn2z9mZood4k5K6ptOl3OowDgYDVR0PAQH/BAQDAgeAMG8GA1Ud
HwRoMGYwZKBioGCGXnJzeW5jOi8vcnBraTEudGVycmF0cmFuc2l0LmRlL3JlcG8v
VGVycmFUcmFuc2l0LzQvQTZCNjVENDcwOUY2Q0ZEOTk5QTI4Nzc4OTM5MkJBQTZE
M0E1RENFQS5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzov
L3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3ByWmRSd24yejltWm9v
ZDRrNUs2cHRPbDNPby5jZXIwgY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuG
cHJzeW5jOi8vcnBraTEudGVycmF0cmFuc2l0LmRlL3JlcG8vVGVycmFUcmFuc2l0
LzQvMzEzODM1MmUzMjMzMzAyZTMxMzMzOTJlMzAyZjMyMzQyZDMyMzQyMDNkM2Uy
MDMxMzMzNjM3MzgzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggr
BgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALnmizANBgkqhkiG9w0BAQsFAAOCAQEA
TTCWNMKRhurcL235f8iz2VqNqNhmVdvOpc27ZYleSgHbh+TktFHxAUhgJXk5nMdv
DTGELj7B6ijM4035WtrXCSkmKrCgiWl6TRroahn6lDaR4LRNBmQP4auFgvZcUQvq
A+evpqgfn/Ok8DcBTirms7mJl++KdAcpEU1FdOMg+Cw/oo5Q4ID1EJaGXNp+Fmc5
cVkS03UMIhcnsuIgNUOTGPd9RhXeslHXiEL53Y0z4jCi3VG0p48Teo0wyg9a4D1P
jjXKX6jQeKTM2BMxLMIyO0cR+3GqomCnBC02x/QRtCKsuqLWPyv1rwLPant5s6dk
CJiHTHgzrxT8iHxe8dJSlA==
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:51 2023 by rpki-client on console.sobornost.net